/src/openssl30/crypto/asn1/d2i_pr.c

Source (jump to first uncovered line)
/*
 * Copyright 1995-2021 The OpenSSL Project Authors. All Rights Reserved.
 *
 * Licensed under the Apache License 2.0 (the "License").  You may not use
 * this file except in compliance with the License.  You can obtain a copy
 * in the file LICENSE in the source distribution or at
 * https://www.openssl.org/source/license.html
 */

/* We need to use some engine deprecated APIs */
#define OPENSSL_SUPPRESS_DEPRECATED

#include <stdio.h>
#include "internal/cryptlib.h"
#include <openssl/bn.h>
#include <openssl/evp.h>
#include <openssl/objects.h>
#include <openssl/decoder.h>
#include <openssl/engine.h>
#include <openssl/x509.h>
#include <openssl/asn1.h>
#include "crypto/asn1.h"
#include "crypto/evp.h"
#include "internal/asn1.h"

static EVP_PKEY *
d2i_PrivateKey_decoder(int keytype, EVP_PKEY **a, const unsigned char **pp,
                       long length, OSSL_LIB_CTX *libctx, const char *propq)
{
    OSSL_DECODER_CTX *dctx = NULL;
    size_t len = length;
    EVP_PKEY *pkey = NULL, *bak_a = NULL;
    EVP_PKEY **ppkey = &pkey;
    const char *key_name = NULL;
    const char *input_structures[] = { "type-specific", "PrivateKeyInfo", NULL };
    int i, ret;

    if (keytype != EVP_PKEY_NONE) {
        key_name = evp_pkey_type2name(keytype);
        if (key_name == NULL)
            return NULL;
    }

    for (i = 0;  i < (int)OSSL_NELEM(input_structures); ++i) {
        const unsigned char *p = *pp;

        if (a != NULL && (bak_a = *a) != NULL)
            ppkey = a;
        dctx = OSSL_DECODER_CTX_new_for_pkey(ppkey, "DER",
                                             input_structures[i], key_name,
                                             EVP_PKEY_KEYPAIR, libctx, propq);
        if (a != NULL)
            *a = bak_a;
        if (dctx == NULL)
            continue;

        ret = OSSL_DECODER_from_data(dctx, pp, &len);
        OSSL_DECODER_CTX_free(dctx);
        if (ret) {
            if (*ppkey != NULL
                && evp_keymgmt_util_has(*ppkey, OSSL_KEYMGMT_SELECT_PRIVATE_KEY)) {
                if (a != NULL)
                    *a = *ppkey;
                return *ppkey;
            }
            *pp = p;
            goto err;
        }
    }
    /* Fall through to error if all decodes failed */
err:
    if (ppkey != a)
        EVP_PKEY_free(*ppkey);
    return NULL;
}

EVP_PKEY *
ossl_d2i_PrivateKey_legacy(int keytype, EVP_PKEY **a, const unsigned char **pp,
                           long length, OSSL_LIB_CTX *libctx, const char *propq)
{
    EVP_PKEY *ret;
    const unsigned char *p = *pp;

    if (a == NULL || *a == NULL) {
        if ((ret = EVP_PKEY_new()) == NULL) {
            ERR_raise(ERR_LIB_ASN1, ERR_R_EVP_LIB);
            return NULL;
        }
    } else {
        ret = *a;
#ifndef OPENSSL_NO_ENGINE
        ENGINE_finish(ret->engine);
        ret->engine = NULL;
#endif
    }

    if (!EVP_PKEY_set_type(ret, keytype)) {
        ERR_raise(ERR_LIB_ASN1, ASN1_R_UNKNOWN_PUBLIC_KEY_TYPE);
        goto err;
    }

    ERR_set_mark();
    if (!ret->ameth->old_priv_decode ||
        !ret->ameth->old_priv_decode(ret, &p, length)) {
        if (ret->ameth->priv_decode != NULL
                || ret->ameth->priv_decode_ex != NULL) {
            EVP_PKEY *tmp;
            PKCS8_PRIV_KEY_INFO *p8 = NULL;
            p8 = d2i_PKCS8_PRIV_KEY_INFO(NULL, &p, length);
            if (p8 == NULL) {
                ERR_clear_last_mark();
                goto err;
            }
            tmp = evp_pkcs82pkey_legacy(p8, libctx, propq);
            PKCS8_PRIV_KEY_INFO_free(p8);
            if (tmp == NULL) {
                ERR_clear_last_mark();
                goto err;
            }
            EVP_PKEY_free(ret);
            ret = tmp;
            ERR_pop_to_mark();
            if (EVP_PKEY_type(keytype) != EVP_PKEY_get_base_id(ret))
                goto err;
        } else {
            ERR_clear_last_mark();
            ERR_raise(ERR_LIB_ASN1, ERR_R_ASN1_LIB);
            goto err;
        }
    } else {
      ERR_clear_last_mark();
    }
    *pp = p;
    if (a != NULL)
        *a = ret;
    return ret;
 err:
    if (a == NULL || *a != ret)
        EVP_PKEY_free(ret);
    return NULL;
}

EVP_PKEY *d2i_PrivateKey_ex(int keytype, EVP_PKEY **a, const unsigned char **pp,
                            long length, OSSL_LIB_CTX *libctx,
                            const char *propq)
{
    EVP_PKEY *ret;

    ret = d2i_PrivateKey_decoder(keytype, a, pp, length, libctx, propq);
    /* try the legacy path if the decoder failed */
    if (ret == NULL)
        ret = ossl_d2i_PrivateKey_legacy(keytype, a, pp, length, libctx, propq);
    return ret;
}

EVP_PKEY *d2i_PrivateKey(int type, EVP_PKEY **a, const unsigned char **pp,
                         long length)
{
    return d2i_PrivateKey_ex(type, a, pp, length, NULL, NULL);
}

static EVP_PKEY *d2i_AutoPrivateKey_legacy(EVP_PKEY **a,
                                           const unsigned char **pp,
                                           long length,
                                           OSSL_LIB_CTX *libctx,
                                           const char *propq)
{
    STACK_OF(ASN1_TYPE) *inkey;
    const unsigned char *p;
    int keytype;

    p = *pp;
    /*
     * Dirty trick: read in the ASN1 data into a STACK_OF(ASN1_TYPE): by
     * analyzing it we can determine the passed structure: this assumes the
     * input is surrounded by an ASN1 SEQUENCE.
     */
    inkey = d2i_ASN1_SEQUENCE_ANY(NULL, &p, length);
    p = *pp;
    /*
     * Since we only need to discern "traditional format" RSA and DSA keys we
     * can just count the elements.
     */
    if (sk_ASN1_TYPE_num(inkey) == 6) {
        keytype = EVP_PKEY_DSA;
    } else if (sk_ASN1_TYPE_num(inkey) == 4) {
        keytype = EVP_PKEY_EC;
    } else if (sk_ASN1_TYPE_num(inkey) == 3) { /* This seems to be PKCS8, not
                                              * traditional format */
        PKCS8_PRIV_KEY_INFO *p8 = d2i_PKCS8_PRIV_KEY_INFO(NULL, &p, length);
        EVP_PKEY *ret;

        sk_ASN1_TYPE_pop_free(inkey, ASN1_TYPE_free);
        if (p8 == NULL) {
            ERR_raise(ERR_LIB_ASN1, ASN1_R_UNSUPPORTED_PUBLIC_KEY_TYPE);
            return NULL;
        }
        ret = evp_pkcs82pkey_legacy(p8, libctx, propq);
        PKCS8_PRIV_KEY_INFO_free(p8);
        if (ret == NULL)
            return NULL;
        *pp = p;
        if (a != NULL) {
            *a = ret;
        }
        return ret;
    } else {
        keytype = EVP_PKEY_RSA;
    }
    sk_ASN1_TYPE_pop_free(inkey, ASN1_TYPE_free);
    return ossl_d2i_PrivateKey_legacy(keytype, a, pp, length, libctx, propq);
}

/*
 * This works like d2i_PrivateKey() except it passes the keytype as
 * EVP_PKEY_NONE, which then figures out the type during decoding.
 */
EVP_PKEY *d2i_AutoPrivateKey_ex(EVP_PKEY **a, const unsigned char **pp,
                                long length, OSSL_LIB_CTX *libctx,
                                const char *propq)
{
    EVP_PKEY *ret;

    ret = d2i_PrivateKey_decoder(EVP_PKEY_NONE, a, pp, length, libctx, propq);
    /* try the legacy path if the decoder failed */
    if (ret == NULL)
        ret = d2i_AutoPrivateKey_legacy(a, pp, length, libctx, propq);
    return ret;
}

EVP_PKEY *d2i_AutoPrivateKey(EVP_PKEY **a, const unsigned char **pp,
                             long length)
{
    return d2i_AutoPrivateKey_ex(a, pp, length, NULL, NULL);
}

Coverage Report

Created: 2025-06-13 06:58

Line	Count	Source (jump to first uncovered line)
1		/*
2		* Copyright 1995-2021 The OpenSSL Project Authors. All Rights Reserved.
3		*
4		* Licensed under the Apache License 2.0 (the "License"). You may not use
5		* this file except in compliance with the License. You can obtain a copy
6		* in the file LICENSE in the source distribution or at
7		* https://www.openssl.org/source/license.html
8		*/
9
10		/* We need to use some engine deprecated APIs */
11		#define OPENSSL_SUPPRESS_DEPRECATED
12
13		#include <stdio.h>
14		#include "internal/cryptlib.h"
15		#include <openssl/bn.h>
16		#include <openssl/evp.h>
17		#include <openssl/objects.h>
18		#include <openssl/decoder.h>
19		#include <openssl/engine.h>
20		#include <openssl/x509.h>
21		#include <openssl/asn1.h>
22		#include "crypto/asn1.h"
23		#include "crypto/evp.h"
24		#include "internal/asn1.h"
25
26		static EVP_PKEY *
27		d2i_PrivateKey_decoder(int keytype, EVP_PKEY a, const unsigned char pp,
28		long length, OSSL_LIB_CTX libctx, const char propq)
29	12.6k	{
30	12.6k	OSSL_DECODER_CTX *dctx = NULL;
31	12.6k	size_t len = length;
32	12.6k	EVP_PKEY pkey = NULL, bak_a = NULL;
33	12.6k	EVP_PKEY **ppkey = &pkey;
34	12.6k	const char *key_name = NULL;
35	12.6k	const char *input_structures[] = { "type-specific", "PrivateKeyInfo", NULL };
36	12.6k	int i, ret;
37
38	12.6k	if (keytype != EVP_PKEY_NONE) {
39	0	key_name = evp_pkey_type2name(keytype);
40	0	if (key_name == NULL)
41	0	return NULL;
42	0	}
43
44	46.9k	for (i = 0; i < (int)OSSL_NELEM(input_structures); ++i) {
45	35.5k	const unsigned char p = pp;
46
47	35.5k	if (a != NULL && (bak_a = *a) != NULL)
48	0	ppkey = a;
49	35.5k	dctx = OSSL_DECODER_CTX_new_for_pkey(ppkey, "DER",
50	35.5k	input_structures[i], key_name,
51	35.5k	EVP_PKEY_KEYPAIR, libctx, propq);
52	35.5k	if (a != NULL)
53	0	*a = bak_a;
54	35.5k	if (dctx == NULL)
55	0	continue;
56
57	35.5k	ret = OSSL_DECODER_from_data(dctx, pp, &len);
58	35.5k	OSSL_DECODER_CTX_free(dctx);
59	35.5k	if (ret) {
60	1.26k	if (*ppkey != NULL
61	1.26k	&& evp_keymgmt_util_has(*ppkey, OSSL_KEYMGMT_SELECT_PRIVATE_KEY)) {
62	1.26k	if (a != NULL)
63	0	a = ppkey;
64	1.26k	return *ppkey;
65	1.26k	}
66	0	*pp = p;
67	0	goto err;
68	1.26k	}
69	35.5k	}
70		/* Fall through to error if all decodes failed */
71	11.4k	err:
72	11.4k	if (ppkey != a)
73	11.4k	EVP_PKEY_free(*ppkey);
74	11.4k	return NULL;
75	12.6k	}
76
77		EVP_PKEY *
78		ossl_d2i_PrivateKey_legacy(int keytype, EVP_PKEY a, const unsigned char pp,
79		long length, OSSL_LIB_CTX libctx, const char propq)
80	41.7k	{
81	41.7k	EVP_PKEY *ret;
82	41.7k	const unsigned char p = pp;
83
84	41.7k	if (a == NULL \|\| *a == NULL) {
85	41.7k	if ((ret = EVP_PKEY_new()) == NULL) {
86	0	ERR_raise(ERR_LIB_ASN1, ERR_R_EVP_LIB);
87	0	return NULL;
88	0	}
89	41.7k	} else {
90	0	ret = *a;
91	0	#ifndef OPENSSL_NO_ENGINE
92	0	ENGINE_finish(ret->engine);
93	0	ret->engine = NULL;
94	0	#endif
95	0	}
96
97	41.7k	if (!EVP_PKEY_set_type(ret, keytype)) {
98	0	ERR_raise(ERR_LIB_ASN1, ASN1_R_UNKNOWN_PUBLIC_KEY_TYPE);
99	0	goto err;
100	0	}
101
102	41.7k	ERR_set_mark();
103	41.7k	if (!ret->ameth->old_priv_decode \|\|
104	41.7k	!ret->ameth->old_priv_decode(ret, &p, length)) {
105	41.2k	if (ret->ameth->priv_decode != NULL
106	41.2k	\|\| ret->ameth->priv_decode_ex != NULL) {
107	41.2k	EVP_PKEY *tmp;
108	41.2k	PKCS8_PRIV_KEY_INFO *p8 = NULL;
109	41.2k	p8 = d2i_PKCS8_PRIV_KEY_INFO(NULL, &p, length);
110	41.2k	if (p8 == NULL) {
111	41.2k	ERR_clear_last_mark();
112	41.2k	goto err;
113	41.2k	}
114	22	tmp = evp_pkcs82pkey_legacy(p8, libctx, propq);
115	22	PKCS8_PRIV_KEY_INFO_free(p8);
116	22	if (tmp == NULL) {
117	14	ERR_clear_last_mark();
118	14	goto err;
119	14	}
120	8	EVP_PKEY_free(ret);
121	8	ret = tmp;
122	8	ERR_pop_to_mark();
123	8	if (EVP_PKEY_type(keytype) != EVP_PKEY_get_base_id(ret))
124	4	goto err;
125	8	} else {
126	0	ERR_clear_last_mark();
127	0	ERR_raise(ERR_LIB_ASN1, ERR_R_ASN1_LIB);
128	0	goto err;
129	0	}
130	41.2k	} else {
131	507	ERR_clear_last_mark();
132	507	}
133	511	*pp = p;
134	511	if (a != NULL)
135	0	*a = ret;
136	511	return ret;
137	41.2k	err:
138	41.2k	if (a == NULL \|\| *a != ret)
139	41.2k	EVP_PKEY_free(ret);
140	41.2k	return NULL;
141	41.7k	}
142
143		EVP_PKEY d2i_PrivateKey_ex(int keytype, EVP_PKEY a, const unsigned char *pp,
144		long length, OSSL_LIB_CTX *libctx,
145		const char *propq)
146	0	{
147	0	EVP_PKEY *ret;
148
149	0	ret = d2i_PrivateKey_decoder(keytype, a, pp, length, libctx, propq);
150		/* try the legacy path if the decoder failed */
151	0	if (ret == NULL)
152	0	ret = ossl_d2i_PrivateKey_legacy(keytype, a, pp, length, libctx, propq);
153	0	return ret;
154	0	}
155
156		EVP_PKEY d2i_PrivateKey(int type, EVP_PKEY a, const unsigned char *pp,
157		long length)
158	0	{
159	0	return d2i_PrivateKey_ex(type, a, pp, length, NULL, NULL);
160	0	}
161
162		static EVP_PKEY d2i_AutoPrivateKey_legacy(EVP_PKEY *a,
163		const unsigned char **pp,
164		long length,
165		OSSL_LIB_CTX *libctx,
166		const char *propq)
167	47.2k	{
168	47.2k	STACK_OF(ASN1_TYPE) *inkey;
169	47.2k	const unsigned char *p;
170	47.2k	int keytype;
171
172	47.2k	p = *pp;
173		/*
174		* Dirty trick: read in the ASN1 data into a STACK_OF(ASN1_TYPE): by
175		* analyzing it we can determine the passed structure: this assumes the
176		* input is surrounded by an ASN1 SEQUENCE.
177		*/
178	47.2k	inkey = d2i_ASN1_SEQUENCE_ANY(NULL, &p, length);
179	47.2k	p = *pp;
180		/*
181		* Since we only need to discern "traditional format" RSA and DSA keys we
182		* can just count the elements.
183		*/
184	47.2k	if (sk_ASN1_TYPE_num(inkey) == 6) {
185	1.07k	keytype = EVP_PKEY_DSA;
186	46.1k	} else if (sk_ASN1_TYPE_num(inkey) == 4) {
187	1.62k	keytype = EVP_PKEY_EC;
188	44.5k	} else if (sk_ASN1_TYPE_num(inkey) == 3) { /* This seems to be PKCS8, not
189		* traditional format */
190	5.50k	PKCS8_PRIV_KEY_INFO *p8 = d2i_PKCS8_PRIV_KEY_INFO(NULL, &p, length);
191	5.50k	EVP_PKEY *ret;
192
193	5.50k	sk_ASN1_TYPE_pop_free(inkey, ASN1_TYPE_free);
194	5.50k	if (p8 == NULL) {
195	4.74k	ERR_raise(ERR_LIB_ASN1, ASN1_R_UNSUPPORTED_PUBLIC_KEY_TYPE);
196	4.74k	return NULL;
197	4.74k	}
198	758	ret = evp_pkcs82pkey_legacy(p8, libctx, propq);
199	758	PKCS8_PRIV_KEY_INFO_free(p8);
200	758	if (ret == NULL)
201	395	return NULL;
202	363	*pp = p;
203	363	if (a != NULL) {
204	0	*a = ret;
205	0	}
206	363	return ret;
207	39.0k	} else {
208	39.0k	keytype = EVP_PKEY_RSA;
209	39.0k	}
210	41.7k	sk_ASN1_TYPE_pop_free(inkey, ASN1_TYPE_free);
211	41.7k	return ossl_d2i_PrivateKey_legacy(keytype, a, pp, length, libctx, propq);
212	47.2k	}
213
214		/*
215		* This works like d2i_PrivateKey() except it passes the keytype as
216		* EVP_PKEY_NONE, which then figures out the type during decoding.
217		*/
218		EVP_PKEY d2i_AutoPrivateKey_ex(EVP_PKEY a, const unsigned char *pp,
219		long length, OSSL_LIB_CTX *libctx,
220		const char *propq)
221	52.9k	{
222	52.9k	EVP_PKEY *ret;
223
224	52.9k	ret = d2i_PrivateKey_decoder(EVP_PKEY_NONE, a, pp, length, libctx, propq);
225		/* try the legacy path if the decoder failed */
226	52.9k	if (ret == NULL)
227	47.2k	ret = d2i_AutoPrivateKey_legacy(a, pp, length, libctx, propq);
228	52.9k	return ret;
229	52.9k	}
230
231		EVP_PKEY d2i_AutoPrivateKey(EVP_PKEY a, const unsigned char *pp,
232		long length)
233	52.9k	{
234	52.9k	return d2i_AutoPrivateKey_ex(a, pp, length, NULL, NULL);
235	52.9k	}